leaf-2-a

!Command: show running-config
!Running configuration last done at: Sat Jul 22 02:47:38 2023
!Time: Sat Jul 22 03:33:31 2023

version 10.3(1) Bios:version
hostname leaf-2-a
policy-map type network-qos jumboframes
  class type network-qos class-default
    mtu 9216
vdc leaf-2-a id 1
  limit-resource vlan minimum 16 maximum 4094
  limit-resource vrf minimum 2 maximum 4096
  limit-resource port-channel minimum 0 maximum 511
  limit-resource m4route-mem minimum 58 maximum 58
  limit-resource m6route-mem minimum 8 maximum 8

cfs eth distribute
nv overlay evpn
feature ospf
feature bgp
feature pim
feature fabric forwarding
feature interface-vlan
feature vn-segment-vlan-based
feature lacp
feature vpc
feature nv overlay

no password strength-check
username admin password 5 $5$OEILEO$ExR9klwglqRDRl2LVronZR5FqDDWhEYbjjp9gIdd.Z5
 role network-admin
username cisco password 5 $5$MDDNEI$6chZ4X0y7zWdJq2u10wcB39YZzsnZzqFQNZ89qatAj.
 role network-admin
username cisco passphrase  lifetime 99999 warntime 14 gracetime 3
ip domain-lookup
system qos
  service-policy type network-qos jumboframes
copp profile strict
snmp-server user admin network-admin auth md5 3208E8B9D356C3462CAEC0C8F989BC4F88
82 priv aes-128 174CEB9FA77FE27D11C789CBED849B54C083 localizedV2key
snmp-server user cisco network-admin auth md5 176CB6D4F22FB7750FDEF1DFF4DED00483
9A priv aes-128 2174C5D8ED75804E39F6C699FE8A94228F9D localizedV2key
rmon event 1 log trap public description FATAL(1) owner PMON@FATAL
rmon event 2 log trap public description CRITICAL(2) owner PMON@CRITICAL
rmon event 3 log trap public description ERROR(3) owner PMON@ERROR
rmon event 4 log trap public description WARNING(4) owner PMON@WARNING
rmon event 5 log trap public description INFORMATION(5) owner PMON@INFO

fabric forwarding anycast-gateway-mac 0000.dead.beef
ip pim rp-address 10.255.0.123 group-list 239.0.0.0/8
ip pim ssm range 232.0.0.0/8
vlan 1,60-70,100,444,555
vlan 60
  name ops
  vn-segment 10060
vlan 61
  name sales
  vn-segment 10061
vlan 100
  name public1
  vn-segment 10100
vlan 444
  name BACKUP_VLAN_ROUTING_VPC
vlan 555
  name L3VNI-For-IRB
  vn-segment 10555

spanning-tree port type edge bpduguard default
spanning-tree loopguard default
spanning-tree vlan 60-61,100,555 priority 8192
route-map DIRECT-PERMIT-ALL permit 10
  description ** Route-Map for BGP to redist route **
vrf context ISP
  vni 10555
  rd auto
  address-family ipv4 unicast
    route-target both auto
    route-target both auto evpn
  address-family ipv6 unicast
    route-target both auto
    route-target both auto evpn
vrf context management
vpc domain 1
  peer-switch
  role priority 10
  peer-keepalive destination 172.30.0.42 source 172.30.0.41
  delay restore 90
  peer-gateway
  delay restore interface-vlan 30
  ipv6 nd synchronize
  ip arp synchronize


interface Vlan1
  no ip redirects
  no ipv6 redirects

interface Vlan100
  description ** Anycast Gateway For Public  **
  no shutdown
  mtu 9216
  vrf member ISP
  no ip redirects
  ip address 69.25.124.1/24
  no ipv6 redirects
  fabric forwarding mode anycast-gateway

interface Vlan444
  description ** Underlay Backup over vPC Peer-Link **
  no shutdown
  no ip redirects
  ip address 192.168.2.1/30
  no ipv6 redirects
  ip ospf authentication-key 3 fa3ab8e90610229c
  ip ospf network point-to-point
  ip router ospf UNDERLAY-NET area 0.0.0.0
  ip pim sparse-mode

interface Vlan555
  description ** L3VNI-For-IRB **
  no shutdown
  mtu 9216
  vrf member ISP
  no ip redirects
  ip forward
  no ipv6 redirects

interface port-channel3
  switchport access vlan 60
  speed 1000
  vpc 3

interface port-channel999
  description ** vPC Peer-Link **
  switchport mode trunk
  switchport trunk allowed vlan 60-61,100,444,555
  spanning-tree port type network
  vpc peer-link

interface nve1
  no shutdown
  description ** VTEP/NVE Interface **
  host-reachability protocol bgp
  source-interface loopback1
  member vni 10060
    mcast-group 239.1.1.1
  member vni 10061
    mcast-group 239.1.1.1
  member vni 10100
    mcast-group 239.1.1.100
  member vni 10555 associate-vrf

interface Ethernet1/1
  description ** Spine-1 **
  no switchport
  mtu 9216
  medium p2p
  ip unnumbered loopback0
  ip ospf authentication-key 3 fa3ab8e90610229c
  ip ospf network point-to-point
  ip router ospf UNDERLAY-NET area 0.0.0.0
  ip pim sparse-mode
  no shutdown

interface Ethernet1/2
  description ** Spine-2 **
  no switchport
  mtu 9216
  medium p2p
  ip unnumbered loopback0
  ip ospf authentication-key 3 fa3ab8e90610229c
  ip ospf network point-to-point
  ip router ospf UNDERLAY-NET area 0.0.0.0
  ip pim sparse-mode
  no shutdown

interface Ethernet1/3
  description *** Linux Server ***
  switchport access vlan 60
  speed 1000
  channel-group 3 mode active

interface Ethernet1/4

interface Ethernet1/5

interface Ethernet1/6

interface Ethernet1/7

interface Ethernet1/8

interface Ethernet1/9

interface Ethernet1/10

interface Ethernet1/11

interface Ethernet1/12

interface Ethernet1/13

interface Ethernet1/14

interface Ethernet1/15

interface Ethernet1/16

interface Ethernet1/17

interface Ethernet1/18

interface Ethernet1/19

interface Ethernet1/20

interface Ethernet1/21

interface Ethernet1/22

interface Ethernet1/23

interface Ethernet1/24

interface Ethernet1/25

interface Ethernet1/26

interface Ethernet1/27

interface Ethernet1/28

interface Ethernet1/29

interface Ethernet1/30

interface Ethernet1/31

interface Ethernet1/32

interface Ethernet1/33

interface Ethernet1/34

interface Ethernet1/35

interface Ethernet1/36

interface Ethernet1/37

interface Ethernet1/38

interface Ethernet1/39

interface Ethernet1/40

interface Ethernet1/41

interface Ethernet1/42

interface Ethernet1/43

interface Ethernet1/44

interface Ethernet1/45

interface Ethernet1/46

interface Ethernet1/47

interface Ethernet1/48

interface Ethernet1/49

interface Ethernet1/50

interface Ethernet1/51

interface Ethernet1/52

interface Ethernet1/53

interface Ethernet1/54

interface Ethernet1/55

interface Ethernet1/56

interface Ethernet1/57

interface Ethernet1/58

interface Ethernet1/59

interface Ethernet1/60

interface Ethernet1/61

interface Ethernet1/62

interface Ethernet1/63
  description ** vPC Peer-Link **
  switchport mode trunk
  switchport trunk allowed vlan 60-61,100,444,555
  channel-group 999 mode active

interface Ethernet1/64
  description ** vPC Peer-Link **
  switchport mode trunk
  switchport trunk allowed vlan 60-61,100,444,555
  channel-group 999 mode active

interface mgmt0
  vrf member management
  ip address 172.30.0.41/24

interface loopback0
  description ** RID/BGP Overlay **
  ip address 10.255.1.21/32
  ip router ospf UNDERLAY-NET area 0.0.0.0
  ip pim sparse-mode

interface loopback1
  description ** VTEP/Overlay **
  ip address 10.255.255.21/32
  ip address 10.255.255.20/32 secondary
  ip ospf authentication-key 3 fa3ab8e90610229c
  ip router ospf UNDERLAY-NET area 0.0.0.0
  ip pim sparse-mode
icam monitor scale

cli alias name wr copy running-config startup-config
line console
line vty
boot nxos bootflash:/nxos64-cs.10.3.1.F.bin
router ospf UNDERLAY-NET
  router-id 10.255.1.21
  log-adjacency-changes
  area 0.0.0.0 authentication
router bgp 65001
  router-id 10.255.1.21
  log-neighbor-changes
  template peer VXLAN_SPINE
    remote-as 65001
    update-source loopback0
    address-family ipv4 unicast
    address-family l2vpn evpn
      send-community
      send-community extended
  neighbor 10.255.0.1
    inherit peer VXLAN_SPINE
    description ** iBGP Peer to Spine-1 **
  neighbor 10.255.0.2
    inherit peer VXLAN_SPINE
    description ** iBGP Peer to Spine-2 **
  vrf ISP
    log-neighbor-changes
    address-family ipv4 unicast
      redistribute direct route-map DIRECT-PERMIT-ALL
    address-family ipv6 unicast
      redistribute direct route-map DIRECT-PERMIT-ALL
evpn
  vni 10060 l2
    rd auto
    route-target import auto
    route-target export auto
  vni 10061 l2
    rd auto
    route-target import auto
    route-target export auto
  vni 10100 l2
    rd auto
    route-target import auto
    route-target export auto